CVE-2013-0228

CVSS v2.0

6.2

Medium

Vector

AV:L/AC:H/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.7.9

Description The issue arises from the xen iret function in arch/x86/xen/xen-asm 32.S, which does not properly handle an invalid value in the DS segment register on 32-bit Xen paravirt ops platforms. This allows users in the guest operating system to gain privileges within the guest OS through a modified application.

Recommendations For Linux kernel versions prior to 3.7.9, update to version 3.7.9 or later to resolve the issue. As a temporary workaround, consider restricting access to the xen iret function in the affected Linux kernel versions until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-189

Related Identifiers

ALT-PU-2013-1178

CESA-2013_0630

CVE-2013-0228

DLA-103-1

RHSA-2013:0630

RHSA-2013_0630

USN-1756-1

USN-1760-1

USN-1767-1

USN-1778-1

USN-1781-1

USN-1795-1

USN-1796-1

USN-1797-1

USN-1805-1

USN-1808-1

Affected Products

Alt Linux

Centos

Linux Kernel

Red Hat

CVE-2013-0228

Weakness Enumeration

Related Identifiers

Affected Products

References · 31